25 matches found
EUVD-2008-6254
Malware in sbrugna...
EUVD-2008-6356
Malware in sbrugna...
EUVD-2008-6362
Malware in sbrugna...
Z1Exchange 1.0 showads.php id Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/32598/info Z1Exchange is prone to an SQL-injection vulnerability and a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to...
Z1Exchange 1.0 showads.php id Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/32598/info Z1Exchange is prone to an SQL-injection vulnerability and a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to...
CVE-2008-6392
SQL injection vulnerability in showads.php in Z1Exchange allows remote attackers to execute arbitrary SQL commands via the id parameter...
Sql injection
SQL injection vulnerability in showads.php in Z1Exchange allows remote attackers to execute arbitrary SQL commands via the id parameter...
CVE-2008-6386
Cross-site scripting XSS vulnerability in showads.php in Z1Exchange 1.0 allows remote attackers to inject arbitrary web script or HTML via the id parameter...
Cross site scripting
Cross-site scripting XSS vulnerability in showads.php in Z1Exchange 1.0 allows remote attackers to inject arbitrary web script or HTML via the id parameter...
CVE-2008-6386
CVE-2008-6386 describes a Cross-site scripting (XSS) vulnerability in Z1Exchange 1.0, specifically in showads.php, where the id parameter can be leveraged to inject arbitrary web script or HTML. The NVD entry assigns a medium severity (CVSS v2 base score 4.3) with network attack vector, no confid...
CVE-2008-6392
SQL injection vulnerability in showads.php in Z1Exchange allows remote attackers to execute arbitrary SQL commands via the id parameter...
CVE-2008-6392
CVE-2008-6392 describes an SQL injection vulnerability in the Z1Exchange component, specifically in showads.php, allowing remote attackers to execute arbitrary SQL commands via the id parameter . The vulnerability is characterized by the ability to manipulate the database through user-supplied in...
CVE-2008-6284
SQL injection vulnerability in edit.php in Z1Exchange 1.0 allows remote attackers to execute arbitrary SQL commands via the site parameter...
Sql injection
SQL injection vulnerability in edit.php in Z1Exchange 1.0 allows remote attackers to execute arbitrary SQL commands via the site parameter...
CVE-2008-6284
SQL injection vulnerability in edit.php in Z1Exchange 1.0 allows remote attackers to execute arbitrary SQL commands via the site parameter...
CVE-2008-6284
CVE-2008-6284 describes a SQL injection vulnerability in the J1Exchange/ Z1Exchange 1.0 product, specifically in the file edit.php where the site parameter can be exploited to execute arbitrary SQL commands. The issue enables remote attackers to interact with the database and potentially compromi...
z1exchange-sqlxss.txt
--------------------------------------------------------- Portal Name: z1exchange Download : http://1scripts.net/scripts/z1exchange.zip Author : PouyaServer , [email protected] Vulnerability : SQL,XSS --------------------------------------------------------- SQL:...
Z1Exchange 1.0 - id SQL Injection
Z1Exchange 1.0 - id SQL Injection source: https://www.securityfocus.com/bid/32598/info Z1Exchange is prone to an SQL-injection vulnerability and a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to...
Z1Exchange 1.0 - 'id' SQL Injection
source: https://www.securityfocus.com/bid/32598/info Z1Exchange is prone to an SQL-injection vulnerability and a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to steal cookie-based authentication...
Z1Exchange 1.0 - id Cross-Site Scripting
Z1Exchange 1.0 - id Cross-Site Scripting source: https://www.securityfocus.com/bid/32598/info Z1Exchange is prone to an SQL-injection vulnerability and a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacke...